| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware. |
| Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. |
| Transient DOS while processing 11AZ RTT management action frame received through OTA. |
| Memory corruption while parsing the ML IE due to invalid frame content. |
| Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface. |
| Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame. |
| Memory corruption while redirecting log file to any file location with any file name. |
| Memory corruption while processing TPC target power table in FTM TPC. |
| Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame. |
| Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number. |
| Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame. |
| Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE. |
| Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present. |
| Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon. |
| Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length. |
| Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. |
| Transient DOS while parsing fragments of MBSSID IE from beacon frame. |
| Information disclosure while handling beacon probe frame during scan entry generation in client side. |
| Memory corruption when allocating and accessing an entry in an SMEM partition. |
| Memory corruption during the secure boot process, when the `bootm` command is used, it bypasses the authentication of the kernel/rootfs image. |
